Originally Published in Today at Geneseo
Everything you do online generates data whether it’s your personal data (i.e. social security) or physical data (i.e. health data). These are some steps you can take to learn about how your data is collected and used.
- Privacy/convenience tradeoff
Decide which businesses and apps you will grant data access to. Consider the amount of personal information requested versus the benefits you may receive in return. - Manage your privacy
Once you have decided to use an app or new account, check the privacy and security settings and choose your comfort level of information sharing. Get started with NCA’s Manage Your Privacy Settings (https://staysafeonline.org/stay-safe-online/managing-your-privacy/manage-privacy-settings/) page to update the privacy settings of social media accounts, retail stores, apps and more. - Protect your data
Create long, unique passwords and store them in a password manager. Enable multi-factor authentication (MFA) wherever possible, especially on accounts with sensitive information.
Originally published in Today at Geneseo
One scam that often shows up around the holidays is the Wayward Package Phish. (https://krebsonsecurity.com/2021/11/tis-the-season-for-the-wayward-package-phish/) This scam sends you a message imitating a delivery service, such as FedEx, informing you that your package couldn’t be delivered with a link to reschedule delivery. The link leads to a fake returns page. Following the directed steps requires information such as your payment information, SSN, license number, and more. Once finished, you’re redirected to the real FedEx.com page. Now is a great time to remind loved ones to watch out for these scams.
- Avoid clicking on links or attachments in unexpected messages.
- Look for emails that appear urgent and warn about negative consequences if not acted on quickly.
- If unsure, visit the site/service manually.
If sent to your Geneseo email address, report it to the Help Desk (https://www.geneseo.edu/info_security/phishing).
Originally Published in Today at Geneseo
Good cybersecurity hygiene is more than what you do on your computer. It can also involve what you do on your phone, at the bank, or even at your mailbox. Here are some tips for protecting your identity and your digital life:
- Review smartphone app permissions and remove unnecessary access. (https://www.wired.com/story/how-to-check-app-permissions-ios-android-macos-windows/)
- Forward scam text messages to 7726 (SPAM on a phone keypad) to report them to your phone carrier. (https://www.consumer.ftc.gov/articles/how-recognize-and-report-spam-text-messages)
- Periodically review your credit report. Due to the pandemic, you can currently get a new report every month for free. (https://www.annualcreditreport.com/)
- Sign up for Informed Delivery to keep track of critical documents being mailed to your home. (https://informeddelivery.usps.com/)
Originally published in Today at Geneseo
Ransomware is malicious software that encrypts your files, including documents, pictures, and videos, until you pay a ransom to regain access.
Why do we care about ransomware? Ransomware infections are expensive and cause significant disruptions. On average, victims are knocked offline for 23 days and the average total bill for rectifying a ransomware attack in the education sector is $2.73 million.
Are we really a target? According to a recent report, ransomware affected 44% of educational institutions in 2020 and another 33% expect to be hit with an attack in the near future. (https://www.sophos.com/en-us/medialibrary/pdfs/whitepaper/sophos-state-of-ransomware-in-education-2021-wp.pdf)
How can I reduce my risk?
- Keep your computer, smartphone, and applications up-to-date; install security patches quickly.
- Periodically back-up your personal data.
- Watch out for phishing emails -- 60% of ransomware incidents start with a malicious email. Report any suspicious emails.
Originally published //10-19-2021 in Today at Geneseo
We are pleased to offer a Credly badge called “Cybersecurity Sleuth!” (https://www.credly.com/org/geneseo/badge/cybersecurity-sleuth-2021) To earn this badge you must complete your annual cybersecurity awareness training, either via the KnowBe4 web-based training (https://training.knowbe4.com/learner/index.html#/training) or a Zoom workshop (https://www.geneseo.edu/CAM2021#training), AND complete the cybersecurity awareness digital scavenger hunt. (https://sites.google.com/geneseo.edu/2021-digital-scavenger-hunt) Both activities must be completed on or before Friday, October 29th. Badges will be awarded in early November.
Originally published in Today at Geneseo
There are many variations to the gift card scam (https://www.consumer.ftc.gov/articles/gift-card-scams) but a common one goes like this: The scammer will email you posing as someone familiar and ask for your cell number to text you about an “urgent matter.” They will tell you a story about needing a gift card for their niece’s birthday party or some similar event. The scammer then asks you to buy Google Play or iTunes gift cards and text the card numbers or a photo of the back of the card. They promise to pay you back but of course that never comes to fruition.
How to #BeCyberSmart:
- Use caution if someone is trying to move your conversation from email to text.
- Never send gift card numbers in email, text, or phone call.
- If a fraud attempt is sent to your Geneseo email or phone, report it to the Help Desk (https://www.geneseo.edu/info_security/phishing). If sent to your personal email or phone, report it to the FTC (https://reportfraud.ftc.gov/#/).
Originally published in Today at Geneseo
October is Cybersecurity Awareness Month and Geneseo is proud to be a champion (https://staysafeonline.org/cybersecurity-awareness-month/champions/view-all/) supporting this global initiative to promote online safety. The month’s theme is Do Your Part. #BeCyberSmart. CIT will be hosting activities throughout the month (https://www.geneseo.edu/CAM2021) and sharing security tips. Watch out for “Cyber Threat Thursday” for cybersecurity stories and advice.
Our annual cybersecurity awareness training will also take place this month. On Monday you will receive an email with the subject “You have been enrolled in Cybersecurity Awareness Training,” informing you that you have been assigned a course package called 2021 Annual Cybersecurity Training. If you would prefer to complete your training through a Zoom workshop instead, please register for one of the sessions listed on our Cybersecurity Awareness Month page (https://www.geneseo.edu/CAM2021#training).
As a community, cybersecurity is everyone’s responsibility. Thank you for doing your part!
Originally Published in Today at Geneseo
The best and easiest way to help protect yourself and your colleagues from phishing is to report suspicious emails. When you quickly report suspicious emails it helps CIT to contain any threat posed by the email and alert other affected employees. Don’t assume CIT already knows about the email! If it is not listed in the “Phish Bowl” (https://www.geneseo.edu/phishbowl), you should report it.
In the 2021 Annual Cybersecurity Attitudes and Behaviors Report (https://staysafeonline.org/wp-content/uploads/2021/09/Oh-behave-The-Annual-Cybersecurity-Attitudes-and-Behaviors-Report-2021.pdf) two-thirds (67%) of people surveyed “felt confident about their ability to identify a malicious email from a cybercriminal,” but less than half (42%) said that they “always” or “very often” reported suspicious emails by clicking the spam button.
For more information on what to look out for and how to report emails please see “Identify and Report Suspicious Emails.” (https://wiki.geneseo.edu/x/0AQsCg)
Originally published in Today at Geneseo
To further protect our campus computers from malicious software, CIT will initiate a change to administrative rights to standard access on all campus computers beginning on Jan 10th. Accounts on computers with administrative access are frequent malware and ransomware targets. CIT and recently purchased computer accounts have already been set to standard access.
We understand that administrative rights are necessary for some tasks (e.g., installing software), and we have provided apps that will allow you to easily obtain temporary administrative privileges. Mac users will need to use the Privileges app to gain temporary administrative rights. Windows users will need to use the Make Me Admin app.
For More Information
For more information, Ask CIT. Call the HelpDesk at (585) 245-5588 or submit a request.
Originally published in Today at Geneseo
Is your office phone ringing in an empty office? Forward your incoming calls to your cellphone or another number. Request “Single Number Reach“ for a solution that rings both your office phone and another number simultaneously.
- Forward your incoming calls
- Use “Forward all” or “CFwdAll” button on your office phone
- Enter 10 digit phone number with 91 prefix (e.g., 915853141234)
- A message will appear indicating forwarding is enabled
- Use “Forward off” or “CFwdAll” button to stop forwarding
- Single Number Reach
- Visit go.geneseo.edu/phonerequest to submit a request
- Your office phone and another number ring simultaneously
- Can be configured for your work schedule (e.g., M-F 8 am - 4:15 pm or M, W, F 9 am - 5:15 pm)
Need phone service assistance? Ask CIT! Contact the HelpDesk at helpdesk@geneseo.edu or 585-245-5588.
Originally published in Today at Geneseo
CIT has a weekly maintenance window scheduled for Thursdays 6:00 a.m. - 8:00 a.m. This time is set aside each week for our staff to perform routine maintenance and upgrades that may disrupt service. If a service is unavailable early Thursday morning, it may be under maintenance.
Banner upgrades typically take place between 4:00 a.m. - 7:00 a.m. on weekdays other than Thursdays. More extensive upgrades take place over the weekend.
Occasionally, more urgent updates or maintenance requiring more time may be completed outside the maintenance window – immediately, over the weekend, on a holiday, or other off-hours time. CIT posts notices for maintenance events with a broad impact to the CIT Geneseo Status site.
For more information contact: CIT, 585-245-5577
Originally published in Today at Geneseo
CIT posts real-time notices and updates regarding campus network and server service interruptions and planned outages here: https://status.geneseo.edu
If you want to stay up-to-date on the current status of our network and/or servers, there are several ways to do this:
- You can bookmark https://status.geneseo.edu in your browser and check it if you are experiencing any network or server issues.
- To receive email or text notifications from the CIT Status System, go to: https://status.geneseo.edu, and click on the blue “Subscribe to Updates” button. Enter an email address or your cell phone number to subscribe.
- The CIT Status System also automatically sends status updates to our Twitter Feed: https://twitter.com/citgeneseo
CIT also posts updates on social media:
- Twitter: http://twitter.com/citgeneseo
- Facebook: https://www.facebook.com/CITGeneseo
- Instagram: https://www.instagram.com/citgeneseo/
Originally published in Today at Geneseo
Microsoft Teams is now available for all Geneseo account holders! Microsoft Teams is a chat- and video-based collaboration tool that provides teams with the ability to work together and share information via a common space. Utilize cool features like document collaboration with colleagues, one-on-one chat, team chat, and more via Microsoft Teams.
Microsoft Teams includes features such as:
- Chat for today's teams: Communicate in the moment and keep everyone in the know. Chat in teams, privately one-on-one or in groups. Notifications and chat history ensure everyone is kept up to date. Access Microsoft Teams on any device with confidence knowing it's been built with enterprise-level security.
- A hub for teamwork: Give your team access to the information they need, right in Office 365. Chat, content and tools are all in the Team workspace. Apps are built in and you can open Office and other documents right in the Teams application.
- Video conferencing: Instantly go from group chat to video conference with the touch of a button. Teams of 2 or 10,000 can meet in one place, no matter how many places they’re in. Webinars can also be hosted by Geneseo account holders.
Microsoft Teams will replace the Geneseo implementation of Slack. If you actively use Geneseo’s Slack workspace for chat communication, Ask CIT for help moving to Microsoft Teams.
For more information, visit our Self Help guide. Training is available on June 24 and July 6. Visit https://www.geneseo.edu/cit/services/training to register. CIT would be happy to work with your departments to set up new Teams. Ask CIT! Call, chat, or submit a request and we'll be happy to assist you.